ALAS-2018-1023 — Vulnetix

ALAS-2018-1023 PUBLISHED

Affected Products

Vendor	Product	Versions
Amazon	kernel

Exploit Intelligence

Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE). (github-poc)
Arbitrary code execution with kernel privileges using CVE-2018-8897. (github-poc)
The exploitation for CVE-2018-8897 (github-poc)
Implements the POP/MOV SS (CVE-2018-8897) vulnerability by bugchecking the machine (local DoS). (github-poc)
dsfau/CVE-2018-1000199 (github-poc)
CVE-2018-8897.yara (github-yara)
2025-05-12.json (github-poc)

Timeline

May 25, 2018 CVE Published
Feb 13, 2025 PoC Published

References

ALAS-2018-1023: kernel (important) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›